$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/6490D3D85678E9C1587D21E9545EF730D21346B5.cer File: 6490D3D85678E9C1587D21E9545EF730D21346B5.cer (raw, json) Hash identifier: FU1THOMYXe6xmLdQVGlkD+ED1viXPkVAMtdW/CRKxSg= Subject key identifier: 64:90:D3:D8:56:78:E9:C1:58:7D:21:E9:54:5E:F7:30:D2:13:46:B5 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 07C9C7A6648FEDA31CC241DE6A285E127709A202 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/d88575c8-54fe-4801-a7b1-517d0e6b8b73/0/6490D3D85678E9C1587D21E9545EF730D21346B5.mft caRepository: rsync://repo-rpki.idnic.net/repo/d88575c8-54fe-4801-a7b1-517d0e6b8b73/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 02 Aug 2024 09:26:15 +0000 Certificate not after: Fri 01 Aug 2025 09:31:15 +0000 Subordinate resources: IP: 160.20.220.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:c9:c7:a6:64:8f:ed:a3:1c:c2:41:de:6a:28:5e:12:77:09:a2:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Aug 2 09:26:15 2024 GMT Not After : Aug 1 09:31:15 2025 GMT Subject: CN=6490D3D85678E9C1587D21E9545EF730D21346B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5a:14:f6:29:41:92:28:b6:73:91:25:7a:b2: 2f:1d:44:20:7a:6f:e3:62:f9:5d:cd:9f:00:c6:46: a5:22:00:f9:1d:c7:a2:ab:58:72:4c:9a:cd:82:1a: 58:27:bd:95:92:a7:ef:91:66:07:83:03:a9:db:7f: ba:9b:cc:2a:78:10:1a:cf:99:29:ed:e0:0b:48:e0: ce:f4:64:51:a6:f4:c3:9b:cc:8a:54:76:b5:22:2c: 0a:45:bf:3a:ea:ee:8c:d0:7d:4b:d4:69:fa:f7:a3: f9:90:51:4b:ca:03:b4:f5:8b:ee:b2:bb:c0:ab:fb: 8d:a9:94:f9:1f:a5:34:63:f6:be:3d:e3:da:9c:b9: 1e:4b:37:33:03:ba:61:1c:95:c9:d8:da:4d:d0:68: 26:9f:a6:04:c9:a0:da:c1:e4:8c:ae:88:8d:ae:0e: 9e:3b:b2:e2:23:04:8f:ba:36:07:01:38:dc:06:da: 5d:78:ce:45:d1:c6:7c:12:ba:53:c0:ad:7f:06:b9: 30:a1:a4:a1:83:5e:d8:72:8e:5e:9e:af:9e:2f:8c: 85:e4:35:3c:ee:24:dc:b7:0b:13:44:bb:21:fb:fc: 8e:57:0e:64:65:d0:85:ca:45:f6:ce:a0:fe:36:08: 95:ad:9b:28:15:bf:b0:6d:a7:25:51:61:53:95:1e: ef:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 64:90:D3:D8:56:78:E9:C1:58:7D:21:E9:54:5E:F7:30:D2:13:46:B5 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d88575c8-54fe-4801-a7b1-517d0e6b8b73/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d88575c8-54fe-4801-a7b1-517d0e6b8b73/0/6490D3D85678E9C1587D21E9545EF730D21346B5.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.220.0/24 Signature Algorithm: sha256WithRSAEncryption 78:b1:f3:03:0e:61:5b:cf:ac:f1:d7:3d:6a:9b:17:e6:b8:0a: 11:d6:91:ba:60:d2:3b:99:7c:0a:cc:0d:85:f8:4a:bd:65:d9: 05:4d:8d:fc:f8:d6:f2:25:03:b0:91:a8:cb:41:59:17:7d:50: 2c:e4:37:78:85:8e:8d:e2:4f:c9:25:99:d0:72:0b:8c:cb:9c: 13:d4:8a:6a:71:a0:50:af:fd:49:61:18:32:55:c6:4e:24:f6: 00:7f:6d:c3:f1:df:de:f9:b5:71:35:e1:4e:4b:34:7c:79:c0: cf:a2:94:64:b0:5a:cd:5b:c7:15:f4:50:5f:df:3c:1a:3c:b2: e8:94:66:25:ba:7a:ac:2f:70:60:61:19:e5:a5:23:68:e9:25: 20:00:19:ba:70:4b:8a:5c:a1:43:53:d1:3b:26:55:d1:6f:78: 76:e8:cf:30:d9:1c:c6:56:c2:7b:e7:d2:ff:6f:b2:2c:4f:e9: aa:29:ba:50:f7:4b:4b:70:7a:f6:d3:d5:21:d5:69:27:dc:7d: dc:c8:f9:8a:1e:d8:d0:f0:c6:51:32:b9:88:fe:af:7c:74:65: 30:fe:c2:60:42:f5:6c:2e:9b:aa:d6:ff:0b:fe:ae:12:70:32: c2:64:2f:47:5d:f3:0d:00:b5:0e:79:f4:79:f6:29:0c:34:cc: 63:77:8a:84 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUB8nHpmSP7aMcwkHeaiheEncJogIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDgwMjA5MjYxNVoX DTI1MDgwMTA5MzExNVowMzExMC8GA1UEAxMoNjQ5MEQzRDg1Njc4RTlDMTU4N0Qy MUU5NTQ1RUY3MzBEMjEzNDZCNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANNaFPYpQZIotnORJXqyLx1EIHpv42L5Xc2fAMZGpSIA+R3HoqtYckyazYIa WCe9lZKn75FmB4MDqdt/upvMKngQGs+ZKe3gC0jgzvRkUab0w5vMilR2tSIsCkW/ OurujNB9S9Rp+vej+ZBRS8oDtPWL7rK7wKv7jamU+R+lNGP2vj3j2py5Hks3MwO6 YRyVydjaTdBoJp+mBMmg2sHkjK6Ija4Onjuy4iMEj7o2BwE43AbaXXjORdHGfBK6 U8Ctfwa5MKGkoYNe2HKOXp6vni+MheQ1PO4k3LcLE0S7Ifv8jlcOZGXQhcpF9s6g /jYIla2bKBW/sG2nJVFhU5Ue7wUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGSQ09hWeOnBWH0h6VRe9zDSE0a1MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kODg1NzVjOC01NGZlLTQ4MDEtYTdiMS01MTdkMGU2YjhiNzMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ODU3NWM4 LTU0ZmUtNDgwMS1hN2IxLTUxN2QwZTZiOGI3My8wLzY0OTBEM0Q4NTY3OEU5QzE1 ODdEMjFFOTU0NUVGNzMwRDIxMzQ2QjUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACgFNwwDQYJKoZIhvcNAQELBQADggEBAHix8wMOYVvPrPHXPWqbF+a4ChHWkbpg 0juZfArMDYX4Sr1l2QVNjfz41vIlA7CRqMtBWRd9UCzkN3iFjo3iT8klmdByC4zL nBPUimpxoFCv/UlhGDJVxk4k9gB/bcPx3975tXE14U5LNHx5wM+ilGSwWs1bxxX0 UF/fPBo8suiUZiW6eqwvcGBhGeWlI2jpJSAAGbpwS4pcoUNT0TsmVdFveHbozzDZ HMZWwnvn0v9vsixP6aopulD3S0twevbT1SHVaSfcfdzI+Yoe2NDwxlEyuYj+r3x0 ZTD+wmBC9Wwum6rW/wv+rhJwMsJkL0dd8w0AtQ559Hn2KQw0zGN3ioQ= -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org